199842 – [maintainer update] security/p5-Dancer-Plugin-Auth-Extensible update to 0.40

Bug 199842 - [maintainer update] security/p5-Dancer-Plugin-Auth-Extensible update to 0.40

Summary: [maintainer update] security/p5-Dancer-Plugin-Auth-Extensible update to 0.40

Status:	Closed Not Accepted

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Some People
Assignee:	freebsd-ports-bugs (Nobody)

URL:
Keywords:

Depends on:
Blocks:

Reported:	2015-05-01 15:48 UTC by Henk van Oers
Modified:	2015-05-02 19:42 UTC (History)
CC List:	0 users

See Also:

Attachments
diff -ruN (1.16 KB, patch) 2015-05-01 15:48 UTC, Henk van Oers	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Henk van Oers 2015-05-01 15:48:44 UTC

Created attachment 156215 [details]
diff -ruN

portlint -A, QA-test, portmaster,... all fine.

 Changes for version 0.40

    ENHANCEMENTS
        Login handlers go straight to homepage if user was already logged in (thanks to @colinmkeith, GH-32)
        Kwalitee improvements from Michael Gray (mjg17) as part of the awesome pull request challenge (GH-43, GH-44, GH-45, GH-46)
    SECURITY
        Ensure the username and password we got were straight scalars, to avoid potential for "JSON SQL injection" if they came from a deserialised JSON POST body, and contained a hashref that, if fed to e.g. SQL::Abstract or such, would cause a different query to what we'd expect.

Comment 1 Henk van Oers 2015-05-02 19:42:50 UTC

Adds a script on the same location as the D2 version.